Does GetCited — AI Visibility have any unpatched vulnerabilities?

No. All known vulnerabilities in GetCited — AI Visibility have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is GetCited — AI Visibility compatible with WordPress 6.9.4?

According to WordPress.org data, GetCited — AI Visibility 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is GetCited — AI Visibility compatible with PHP 7.4+?

GetCited — AI Visibility requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is GetCited — AI Visibility updated?

GetCited — AI Visibility was last updated on Feb 9, 2026. Frequent updates are generally a positive security signal.

What is GetCited — AI Visibility's security score?

GetCited — AI Visibility has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

GetCited — AI Visibility Security & Risk Analysis

wordpress.org/plugins/getcited

Optimize for AI search. The AI visibility plugin — manage crawlers, generate llms.txt, track citability.

0 active installs v1.0.0 PHP 7.4+ WP 6.0+ Updated Feb 9, 2026

ai-crawlersai-seochatgptllms-txtperplexity

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is GetCited — AI Visibility Safe to Use in 2026?

Generally Safe

Score 100/100

GetCited — AI Visibility has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "getcited" v1.0.0 plugin exhibits a generally good security posture, with most security practices being followed correctly. The extensive use of output escaping (99%) and a high percentage of prepared statements for SQL queries (72%) are strong indicators of developer awareness regarding common web vulnerabilities. The plugin also demonstrates a commitment to security through a significant number of nonce and capability checks (26 and 30 respectively), which are crucial for preventing CSRF and unauthorized access. The absence of known CVEs and bundled libraries further contributes to its positive security profile, suggesting a well-maintained and relatively clean codebase.

However, there are a few areas that warrant attention and present potential risks. The presence of 2 unprotected entry points, specifically within the REST API routes, is a notable concern. These unprotected routes could potentially be exploited if they handle sensitive data or functionality without proper authorization checks. Additionally, the detection of a taint flow with unsanitized paths, even if not flagged as critical or high severity, indicates a potential for path traversal vulnerabilities or unintended file access if not handled with extreme caution. The single dangerous function, `preg_replace(/e)`, while potentially handled securely in context, is a known source of vulnerabilities and should always be carefully reviewed.

In conclusion, "getcited" v1.0.0 is a plugin with strong fundamental security practices, evidenced by its excellent output escaping and substantial use of authorization checks. The vulnerability history being completely clear is a very positive sign. The primary weaknesses lie in the limited but present attack surface without authentication and a single taint flow that requires careful inspection. Addressing these specific points would further enhance the plugin's security and mitigate potential risks.

Key Concerns

REST API routes without permission callbacks
Taint flow with unsanitized paths
Dangerous function: preg_replace(/e)

Vulnerabilities

None known

GetCited — AI Visibility Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

GetCited — AI Visibility Code Analysis

Dangerous Functions

Raw SQL Queries

28 prepared

Unescaped Output

370 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

preg_replace(/e)preg_replace( '/\[\/eincludes\class-site-scanner.php:1049

SQL Query Safety

72% prepared39 total queries

Output Escaping

99% escaped373 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

4 flows1 with unsanitized paths

<class-citability> (includes\class-citability.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

GetCited — AI Visibility Attack Surface

Entry Points30

Unprotected2

AJAX Handlers 24

authwp_ajax_getcited_analyze_postincludes\class-citability.php:102

authwp_ajax_getcited_load_more_postsincludes\class-citability.php:105

authwp_ajax_getcited_save_settingsincludes\class-dashboard.php:38

authwp_ajax_getcited_load_templateincludes\class-dashboard.php:41

authwp_ajax_getcited_add_robots_rulesincludes\class-dashboard.php:44

authwp_ajax_getcited_remove_robots_rulesincludes\class-dashboard.php:45

authwp_ajax_getcited_delete_llms_fileincludes\class-dashboard.php:48

authwp_ajax_getcited_rescan_schemaincludes\class-dashboard.php:51

authwp_ajax_getcited_refresh_visibility_scoreincludes\class-dashboard.php:54

authwp_ajax_getcited_clear_request_logincludes\class-dashboard.php:57

authwp_ajax_getcited_verify_llms_accessibleincludes\class-dashboard.php:60

authwp_ajax_getcited_download_llmsincludes\class-dashboard.php:61

authwp_ajax_getcited_dismiss_citation_nudgeincludes\class-dashboard.php:64

authwp_ajax_getcited_regenerate_llmsincludes\class-dashboard.php:67

authwp_ajax_getcited_next_tipincludes\class-dashboard.php:70

authwp_ajax_getcited_delete_conflicting_llmsincludes\class-dashboard.php:80

authwp_ajax_getcited_health_checkincludes\class-health-check.php:53

authwp_ajax_getcited_scan_siteincludes\class-site-scanner.php:50

authwp_ajax_getcited_wizard_saveincludes\class-wizard.php:41

authwp_ajax_getcited_wizard_skipincludes\class-wizard.php:42

authwp_ajax_getcited_wizard_completeincludes\class-wizard.php:43

authwp_ajax_getcited_wizard_scanincludes\class-wizard.php:44

authwp_ajax_getcited_wizard_verifyincludes\class-wizard.php:45

authwp_ajax_getcited_wizard_fix_llmsincludes\class-wizard.php:46

REST API Routes 6

GET/wp-json/getcited/v1/statusgetcited.php:655

GET/wp-json/getcited/v1/llms-txtgetcited.php:662

GET/wp-json/getcited/v1/citability/(?P<id>\d+)getcited.php:669

GET/wp-json/getcited/v1/settingsgetcited.php:676

GET/wp-json/getcited/v1/crawlersgetcited.php:683

POST/wp-json/getcited/v1/crawlers/(?P<name>[a-zA-Z0-9_-]+)getcited.php:690

WordPress Hooks 37

actionwp_initialize_sitegetcited.php:109

actionplugins_loadedgetcited.php:112

actioninitgetcited.php:115

actionadmin_menugetcited.php:118

actionadmin_initgetcited.php:121

actionadmin_enqueue_scriptsgetcited.php:124

actiongetcited_daily_crongetcited.php:127

actiongetcited_weekly_schema_scangetcited.php:128

actiongetcited_weekly_llms_refreshgetcited.php:129

actionrest_api_initgetcited.php:132

actionadmin_noticesgetcited.php:135

actionshow_user_profileincludes\class-author-fields.php:55

actionedit_user_profileincludes\class-author-fields.php:56

actionpersonal_options_updateincludes\class-author-fields.php:59

actionedit_user_profile_updateincludes\class-author-fields.php:60

actionadd_meta_boxesincludes\class-citability.php:99

actioninitincludes\class-citability.php:108

actionsave_postincludes\class-citability.php:111

actionadmin_noticesincludes\class-dashboard.php:73

actionadmin_noticesincludes\class-dashboard.php:76

actionadmin_noticesincludes\class-dashboard.php:77

actiongetcited_async_health_checkincludes\class-health-check.php:56

actiontemplate_redirectincludes\class-llms-txt.php:38

actionparse_requestincludes\class-llms-txt.php:41

actionwp_headincludes\class-llms-txt.php:44

actiongetcited_llms_txt_servedincludes\class-request-logger.php:50

filterrobots_txtincludes\class-robots.php:38

actiongetcited_settings_savedincludes\class-robots.php:42

actiongetcited_setting_updatedincludes\class-robots.php:44

filterrobots_txtincludes\class-robots.php:208

actionactivated_pluginincludes\class-schema-detector.php:56

actiondeactivated_pluginincludes\class-schema-detector.php:57

actiongetcited_weekly_schema_scanincludes\class-schema-detector.php:60

actionwp_headincludes\class-schema.php:47

actiongetcited_setting_updatedincludes\class-visibility-score.php:68

actionpublish_postincludes\class-visibility-score.php:71

actionadmin_initincludes\class-wizard.php:38

Scheduled Events 4

getcited_daily_cron

getcited_weekly_schema_scan

getcited_weekly_llms_refresh

getcited_async_health_check

Maintenance & Trust

GetCited — AI Visibility Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 9, 2026

PHP min version7.4

Downloads133

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

GetCited — AI Visibility Alternatives

LLM Bot Tracker – AI Crawler Detection & Analytics

llm-bot-tracker-by-hueston

100

Automatically track ChatGPT, Claude, Perplexity & 56 AI bots crawling your WordPress site. Monitor AI search engine visits, detect AI web scrapers …

500 No CVEs

GEO Pilot – AI Search Optimization & llms.txt

geo-pilot

100

Prepare your WordPress site for the AI Search era. Auto-generate a dynamic llms.txt file, optimize content for tokens, and rank in AI Overviews.

10 No CVEs

Better Robots.txt – AI-Ready Crawl Control & Bot Governance

better-robots-txt

Replace the default WordPress robots.txt workflow with a smarter, structured version you can preview before publishing, with Free, Pro, and Premium ed …

6K 2 CVEs

AI Share & Summarize

ai-share-summarize

100

Share on social media and generate summaries with citations from leading AIs (Claude, ChatGPT, Gemini, Grok, Perplexity, DeepSeek, Copilot, Qwen)

900 No CVEs

IA SEO Generator

ia-seo-generator

100

Make your site visible to AI: serve an AI-ready /llms.txt (no root). Appear in answers on ChatGPT, Perplexity, Claude, Gemini, Copilot, Comet.

100 No CVEs

Developer Profile

GetCited — AI Visibility Developer Profile

heytc

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect GetCited — AI Visibility

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/getcited/assets/css/getcited-admin-style.css/wp-content/plugins/getcited/assets/js/getcited-admin-script.js/wp-content/plugins/getcited/assets/js/getcited-settings-script.js/wp-content/plugins/getcited/assets/js/getcited-wizard-script.js

Script Paths

/wp-content/plugins/getcited/assets/js/getcited-admin-script.js/wp-content/plugins/getcited/assets/js/getcited-settings-script.js/wp-content/plugins/getcited/assets/js/getcited-wizard-script.js

Version Parameters

getcited/assets/css/getcited-admin-style.css?ver=getcited/assets/js/getcited-admin-script.js?ver=getcited/assets/js/getcited-settings-script.js?ver=getcited/assets/js/getcited-wizard-script.js?ver=

HTML / DOM Fingerprints

CSS Classes

getcited-settings-sectiongetcited-wizard-stepgetcited-llms-txt-previewgetcited-health-check-item

Data Attributes

data-getcited-llms-txt-contentdata-getcited-site-uuid

JS Globals

GetCitedSettingsGetCitedAdminGetCitedWizardGetCitedSchemaDetector

REST Endpoints

/wp-json/getcited/v1/settings/wp-json/getcited/v1/robots/wp-json/getcited/v1/llms-txt/wp-json/getcited/v1/health-check

Shortcode Output

[getcited_llms_txt_preview][getcited_status_indicator]

FAQ